WIDGETS REQUESTS

POST /token/session

When an application that implements UNLOQ (that has remote logout enabled), is unable to send the session id and its duration via the first
/token call, it may use this endpoint as a backup. Either token or approval_id must be specified.

duration (integer) - The number of seconds the session is considered active, before UNLOQ will consider it terminated.

Result format (200 OK)

{
"type": "api.application.approval.session",
"result": {}
}

Notes

Your application has at most 1 minute to send the session id, after which it will not be able to do that anymore. Once a session id was attached
to the token, no other session id can be re-attached to it.